Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/uH8mdW70LXKWhcdKZBKbhyrTaXg.roa
File: uH8mdW70LXKWhcdKZBKbhyrTaXg.roa (raw, json)
Hash identifier: aiYIpIFos2mE+6NZhQHXaXfDn97oWY3Ky/lx5uW5wJY=
Subject key identifier: B8:7F:26:75:6E:F4:2D:72:96:85:C7:4A:64:12:9B:87:2A:D3:69:78
Certificate issuer: /CN=d18c49c6d7132224583eaf348ae41c50e61d9f45
Certificate serial: 01856C1C77063ED802C25F1974525B743088
Authority key identifier: D1:8C:49:C6:D7:13:22:24:58:3E:AF:34:8A:E4:1C:50:E6:1D:9F:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YxJxtcTIiRYPq80iuQcUOYdn0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/uH8mdW70LXKWhcdKZBKbhyrTaXg.roa
Signing time: Sun 01 Jan 2023 06:54:42 +0000
ROA not before: Sun 01 Jan 2023 06:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210791
IP address blocks: 80.91.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:77:06:3e:d8:02:c2:5f:19:74:52:5b:74:30:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18c49c6d7132224583eaf348ae41c50e61d9f45
Validity
Not Before: Jan 1 06:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b87f26756ef42d729685c74a64129b872ad36978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:21:72:db:c6:24:8a:e6:70:9c:03:cb:06:6f:
54:85:f1:c8:25:4f:fc:f5:25:98:17:41:cb:0e:e0:
df:03:fc:12:cf:25:fd:af:52:98:38:3c:7b:40:66:
86:ef:b8:97:12:aa:1a:61:8b:71:f2:95:a3:f5:6e:
63:ae:74:bb:54:d5:a1:2d:f1:1c:56:7a:fe:b2:2d:
6d:aa:e7:79:cb:80:8f:25:fe:5a:80:14:35:11:b6:
88:06:73:c9:a3:78:8f:cd:64:99:48:c1:b6:40:2c:
2a:49:9c:d8:0e:01:f6:c0:bb:82:ce:4e:8b:96:53:
73:fc:f9:3a:33:e5:2b:8a:c9:4d:25:f9:02:76:be:
a8:cf:ef:33:f0:8e:89:cf:60:ef:79:dc:1c:43:88:
95:27:8e:4c:a4:07:e4:94:2f:b6:e0:f6:cd:2e:f2:
77:28:37:8b:7b:45:43:e4:0c:c1:4a:5a:4b:b0:15:
81:4b:16:4c:02:fc:83:da:ed:f2:c7:e7:9e:0a:fd:
24:3c:2f:ce:0e:e9:f8:69:88:a6:1e:45:4b:0c:e6:
e2:6c:32:42:48:dc:76:7c:1b:60:07:9c:ee:37:14:
7d:78:b6:d2:75:5d:53:8e:48:33:d8:b2:43:ce:10:
72:00:8d:42:ec:1d:28:81:a2:a7:45:a9:5f:c3:f2:
4b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:7F:26:75:6E:F4:2D:72:96:85:C7:4A:64:12:9B:87:2A:D3:69:78
X509v3 Authority Key Identifier:
keyid:D1:8C:49:C6:D7:13:22:24:58:3E:AF:34:8A:E4:1C:50:E6:1D:9F:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YxJxtcTIiRYPq80iuQcUOYdn0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/uH8mdW70LXKWhcdKZBKbhyrTaXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/1fef82-0ae8-48c6-9868-4a16ff9c795b/1/0YxJxtcTIiRYPq80iuQcUOYdn0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.220.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:c2:e6:8b:49:c4:19:a4:4b:b5:cc:6b:04:19:19:ea:d7:c8:
7f:d1:04:4d:57:09:d5:14:59:51:89:28:87:49:17:6f:d1:65:
e9:ad:0e:21:0a:f9:d9:f1:95:b2:78:05:68:13:a3:c5:57:e8:
45:1e:24:bf:c6:d1:71:1f:1d:82:d9:e2:9b:1b:e2:4e:b2:31:
eb:c0:e2:c9:22:75:83:1f:0e:bd:c1:23:82:f4:0f:c6:53:28:
40:bc:9d:1f:4f:a7:90:0f:4a:71:d8:76:7d:77:5b:7b:26:b8:
24:81:2c:f2:c8:7d:19:42:4f:3d:9d:a1:40:f6:c5:24:70:25:
72:13:58:a0:dc:0f:01:42:19:34:04:65:6f:a8:01:de:c1:c0:
0c:b7:e9:06:f4:de:d3:b5:bd:1d:e2:18:35:39:ab:67:b0:a1:
d8:87:8a:6d:f0:f6:99:23:c1:ef:be:99:0e:b0:f5:4a:32:c6:
cf:5e:7b:57:d3:13:2f:3a:c6:a9:52:9b:97:a4:66:87:51:19:
77:36:c0:60:13:aa:4f:70:75:e1:64:1c:e2:ab:8f:ef:91:4f:
a3:be:dc:a7:9c:19:b3:d4:f5:94:51:a8:ba:be:19:db:17:cf:
72:21:95:05:ba:b4:dd:23:3e:9c:bc:5c:f0:9d:e6:45:52:d8:
6e:bb:b9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:12 2024 by rpki-client on console-fra.rpki-client.org